Secure DHCP Server on switches with Nebula
Hello,
I'm deploying some switches on the field, all of them connected with Nebula so remotely managed.
I do not want that if someone plugs a router, in a RJ45 port of a switch
(e.g. SwitchABC), this could modify the DHCP server of the SwitchABC
creating chaos inside its peripherals.
I saw the option DHCP Server Guard (NCC - Switch - Configure - Switch settings) that, when enabled, seems to lock (with the icon of a closed lock) the DHCP server in status area in NCC - Switch - Monitor - Switch - NameOfTheSwitch
The question is how to secure 2-3 different DHCP servers instead of only one.
I want to enable the possibility to let people move the switch from one site to another (of the same Company) and reconnect it always working.
Different sites means different network leases.
So how can I tell SwitchABC to accept DHCP management from:
192.168.1.1
192.168.2.1
192.168.3.1
IPs of firewalls that I have linked to manage those different sites' networks?
Thanks a lot.
0
All Replies
-
Hi @GiuseppeR,
You could add some ACLs to secure 2-3 different DHCP servers instead of only one.
This FAQ shows you how to configure the ACL when there's only one trusted DHCP server, you could add more rules to achieve your requirement.
Hope it helps.Zyxel Melen
0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight